VYPR

OpenOrange

by OpenOrange

CVEs (1)

  • CVE-2024-42048MedAug 7, 2025
    risk 0.42cvss 6.5epss 0.00

    OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL…